When 0patch is running on a computer where ESET NOD32 Antivirus is also running with its "Deep behavioral inspection" feature enabled (this feature is enabled by default), significant performance problems can be observed, notably much slower opening of various files from Windows Explorer and slower launching of new processes and applications.
We tracked this issue down to ESET's "Deep behavioral inspection" feature, likely due to this feature performing extensive and CPU-costly analysis of 0patch's behavior that it (mis)detects as suspect.
To resolve these performance problems, we recommend disabling the "Deep behavioral inspection" feature: in ESET NOD32 Antivirus console, select Setup and click on the cog next to the "Host Intrusion Prevention System (HIPS)" to open its "Advanced setup" page. There, expand the "Deep behavioral Inspection" section and disable the feature.
Alternatively, one could selectively exclude just the most severely affected processes (e.g, explorer.exe) from ESET's "Deep behavioral inspection" feature if performance impact on other processes and operations on the computer seems bearable.
Comments
0 comments
Please sign in to leave a comment.